Documente Academic
Documente Profesional
Documente Cultură
Overview:
This article provides the steps to configure certificate-based authentication to the Palo Alto Networks WebUI.
Note: Once this type of authentication is enabled, all username/password logins are disabled for all
administrators. Administrators must be issued certificates in order to login.
Steps:
1. Generate a CA.
-Go to the Device tab -> Certificates -> click Generate -> Ensure CA is checked.
Generated on 2015-07-13-07:00
1
How to Configure Certificate-based Authentication for the WebUI
Generated on 2015-07-13-07:00
2
How to Configure Certificate-based Authentication for the WebUI
Generated on 2015-07-13-07:00
3
How to Configure Certificate-based Authentication for the WebUI
Generated on 2015-07-13-07:00
4
How to Configure Certificate-based Authentication for the WebUI
Generated on 2015-07-13-07:00
5
How to Configure Certificate-based Authentication for the WebUI
7. Commit.
-When committing, youll see the message below:
Generated on 2015-07-13-07:00
6
How to Configure Certificate-based Authentication for the WebUI
8. Import the Administrator's Client Certificate into the browser (Firefox for demo).
-Go to the Firefox options menu.
Click the View Certificates button.
Click the Import button
Point to the Admins Client Cert previously exported.
Enter passphrase.
Generated on 2015-07-13-07:00
7
How to Configure Certificate-based Authentication for the WebUI
Generated on 2015-07-13-07:00
8
How to Configure Certificate-based Authentication for the WebUI
10. This warning will display because the Cert isn't trusted.
-Add the exception.
Generated on 2015-07-13-07:00
9
How to Configure Certificate-based Authentication for the WebUI
Generated on 2015-07-13-07:00
10